I read a tweet about two days ago and today, MITRE CALDERA 2.0 is out already! If you remember, I wrote briefly about this automated adversary emulation system in my post titled - List of Adversary Emulation Tools. This is a major update and the current version supports Windows, Linux, Mac OSX & Raspberry Pi platforms! A couple of new features include BYOR (Bring Your Own Read more about UPDATE: MITRE CALDERA 2.0

There are a lot of applications today that use Electron Framework, as it helps you build cross platform desktop apps with JavaScript, HTML, and CSS. Examples are applications such as Skype, Station, etc. A new post-exploitation framework - BEEMKA can now help you in maintaining access and exfiltration. Read more about BEEMKA: Basic Electron Post-Exploitation Framework

Consider you have a shell on a system and other post-exploitation do not work for you as they are being caught by a security solution on the system. Worry not as we now have iBombShell, a dynamic remote shell that can be run on any system that supports PowerShell. The reason this is called dynamic is because functions can be dynamically added and loaded as per your requirement. Read more about iBombShell: A Dynamic Post-Exploitation Remote Shell

Posted: 1 year ago by @pentestit26078 viewsUpdated: May 17, 2019 at 10:43 pm

Every once in a while, the security industry brings forth a new buzz word and introduces terminologies that sound über cool and generate lot's of interest. One such word going around now-a-days is automated "adversary emulation". Let's first understand what this really means. Adversary emulation/simulation offers a method to test a network’s resilience against an advanced Read more about List of Adversary Emulation Tools

My previous post was about this open source, malware analysis automation framework - Cuckoo Sandbox 2.0.0. This post however, is about an update made to the framework. We now have Cuckoo Sandbox 2.0.4 which include a number of important improvements simplifying and improving your experience while allowing additional functionality to feature more collected information. Read more about UPDATE: Cuckoo Sandbox 2.0.4

Featured Post

Three days ago, an updated version – Sysdig Falco v0.15.0 – was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. This release incorporates a lot of rule updates that are now also tagged the for MITRE ATT&CK Framework and patches CVE-2019-8339, a medium severity vulnerability.Read more about UPDATE: Sysdig Falco v0.15.0